Denial of Service Vulnerability in Video_Converter App 0.1.0 for Nextcloud

Denial of Service Vulnerability in Video_Converter App 0.1.0 for Nextcloud

CVE-2019-18214 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

The Video_Converter app 0.1.0 for Nextcloud allows denial of service (CPU and memory consumption) via multiple concurrent conversions because many FFmpeg processes may be running at once. (The workload is not queued for serial execution.)

Learn more about our Cloud Audit.